New research from Mitiga, a cloud incident management business, reveals that several databases on Amazon RDS (Amazon Relational Database Service) disclosed personally identifiable information (PII). Ariel Szarf, Doron Karmi, and Lionel Saposnik, who were Researchers, stated that “leaking PII in…
Latest posts - Page 25
Users of Mastodon are at risk of password-stealing attacks
A researcher has cautioned that a vulnerability in Anomaly, a fork of Mastodon, could allow hackers to obtain users’ password information. Mastodon has been more well-known recently due to people switching from Twitter, which the controversial entrepreneur Elon Musk just…
Another Parse Server RCE is produced by the prototype pollution project
Parse Server has been updated to address a prototype pollution vulnerability that could result in remote code execution (RCE). According to a GitHub security advisory posted on November 8, an attacker could potentially trigger RCE by utilizing the flaw (CVE-2022-39396)…
Two persistent Android spyware campaigns that target Uyghurs are discovered by experts.
Two ongoing surveillance operations have been discovered using Android spyware programmes to gather personal data and locate the Uyghur population in China and other countries. This includes upgraded versions of an espionage artefact termed MOONSHINE by researchers from the University…
Ukraine claims Russian hackers are using the latest Somnia ransomware.
The Russian hacktivists introduced a new ransomware strain called Somnia that hit Multiple Ukrainian enterprises and encrypted their computers and disrupted operations. In a statement published on its website, the Computer Emergency Response Team of Ukraine (CERT-UA) announced the outbreak…
Arrested in Canada: Accused LockBit Ransomware Operator
Arrested in Canada: Accused LockBit Ransomware Operator. Mikhail Vasiliev, a Russian-Canadian, could spend up to five years in prison in the US. Ontario police detained a dual citizen of Canada and Russia for serving as a member of the LockBit…
New, Large-Scale Malicious Campaigns Targeting Customers of Top Indian Banks
Cybersecurity experts have issued a warning over “huge phishing efforts” that disseminate five different types of malware and target Indian banking users. New, Large-Scale Malicious Campaigns Targeting Customers of Top Indian Banks. In a study released this week, Trend Micro…
Hacking Google Pixel screen locks nets the researcher $70,000
A security researcher accidentally stumbled onto a Google Pixel lock-screen bypass problem. Hacking Google Pixel screen locks nets the researcher $70,000. David Schütz found the flaw, which allowed an attacker to unlock any Google Pixel phone without having the passcode.…
Executives anticipate more cybersecurity budgets in 2023
In comparison to the global average of 70%, 89% of Indian business executives claim that their organization’s cybersecurity team identified a significant cyber threat to business and stopped it from having an impact on their operations. Executives anticipate more cybersecurity…
APT29 Compromised the European Diplomatic Entity Network
APT29, a nation-state actor with ties to Russia, was discovered using Credential Roaming, a “lesser-known” Windows feature. In its attack on an undisclosed European diplomatic entity network. According to technical writing by Mandiant analyst Thibault Van Geluwe de Berlaere, “the…